[Box Backup] Exception: Cipher EVPFinalFailure (5/6)
Eric Cronin
boxbackup@fluffy.co.uk
Tue, 1 May 2007 15:46:06 -0400
This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
--Apple-Mail-12-25587795
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed
On May 1, 2007, at 2:17 PM, Eric Cronin wrote:
> Very strangely, this has been working fine for about 5 days now,
> which seems odd if it was and openssl bug.
Looking into it more, its not surprising at all, the bug is entirely
client-side having to do with encryption/decryption of blocks.
Basically the bug introduced in 0.9.8e changes EVP_encrypt/
EVP_decrypt such that they produce incompatible ciphertext from
earlier versions or other implementations of blowfish.
The correct solution is NOT what I did, unless you know you are
unable to upgrade/downgrade openssl for an extended period and need
backups in the meantime: once a new version of openssl is installed
on the client which corrects the bug your openssl 0.9.8e encrypted
blocks will now be unreadable. The best solution is to downgrade to
0.9.8d or to patch 0.9.8e's source with <http://cvs.openssl.org/
chngview?cn=15978>, that one line patch is what broke compatibility.
Thanks,
Eric
--Apple-Mail-12-25587795
content-type: application/pgp-signature; x-mac-type=70674453;
name=PGP.sig
content-description: This is a digitally signed message part
content-disposition: inline; filename=PGP.sig
content-transfer-encoding: 7bit
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (Darwin)
iQEVAwUBRjeZAtx5OUWjSTrqAQimiAgApzJnsl0+h27UYP5MPocTAgGjHpfG5Bio
wvqpc20+VVxz3hCpzfQQ7wpPuRKqt7lFbPAC32nKAxq5RQZRVr/OhZT+XxFNqfzl
Wre7rPooZE3ECKVUce0Qi7YnyfaHIK3q3ySCvEKb5mc0hKYPzpiGmAk/WyJnuPw8
H8DkgZXPxtpKb8GqB2bKYfw5v/mtViOUBcehU1gDYRBKCXU2m4mvSs0PGeI42yPj
DsIaxzlibcsIcTWw9/7lyB5WEoYlHf5xh2KrkKUkDQdzFoLPPVSaADbt0hNCZud4
p88khRCybvpiYJpQabZD/qob1vJSobrMyI/WyScHl4MjnB9UV1KHfw==
=VL/+
-----END PGP SIGNATURE-----
--Apple-Mail-12-25587795--